This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft File: IbgvyO2I-ZyrV9doAxdusnqfC_o.mft (raw, json) Hash identifier: qt6u2oCLo7ZGir7ZtAMYNTLAmCmv2/riyZJk0pDmQII= Subject key identifier: ED:62:F0:B0:A5:E7:4F:BC:E9:01:A7:77:15:68:CA:F6:A3:5C:F8:0F Authority key identifier: 21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA Certificate issuer: /CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa Certificate serial: 019B19BAE6EDBCB7F05541D1AF3486BB5B9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft Manifest number: 0F02 Signing time: Sat 13 Dec 2025 22:00:37 +0000 Manifest this update: Sat 13 Dec 2025 22:00:37 +0000 Manifest next update: Sun 14 Dec 2025 22:00:37 +0000 Files and hashes: 1: IbgvyO2I-ZyrV9doAxdusnqfC_o.crl (hash: 7+ycc0ScaXeafE1FDrZaBoGD5jKCarEwCn+iiH6hOec=) 2: ItUhScrgPwKkKUyhqEMMP6UQG5o.roa (hash: gmpeHaOEVGgSYmwc/n6Xey1Y6I6lJR2qqLtWqmrTzmc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:ba:e6:ed:bc:b7:f0:55:41:d1:af:34:86:bb:5b:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa Validity Not Before: Dec 13 22:00:37 2025 GMT Not After : Dec 14 22:00:37 2025 GMT Subject: CN=ed62f0b0a5e74fbce901a7771568caf6a35cf80f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7e:e7:f1:e7:4e:8b:0a:8b:50:5f:ad:b3:56: 32:8d:72:74:64:8b:aa:ac:9b:68:7c:90:1c:55:08: 14:00:c6:ad:c7:ef:1f:8f:3d:b5:54:84:6d:e1:80: 0d:5d:f3:af:0d:73:5d:24:3c:f3:0f:41:1f:7c:05: 20:1f:72:31:da:56:0f:3c:20:1d:e6:1d:84:5e:6e: 60:35:24:19:ab:d9:f9:cd:b1:e2:33:5e:11:f2:45: 66:32:88:cb:c0:da:e3:f6:57:45:81:0f:dd:48:02: 4b:d0:06:36:ff:aa:be:b2:cb:19:85:ea:70:23:44: 33:d0:d4:90:ff:01:6e:7b:ec:c5:77:89:ed:a0:5a: b4:d6:1f:01:4b:71:11:d9:1d:96:2d:16:c9:5f:99: 85:fa:57:b4:42:68:91:a0:4f:6b:52:e9:42:0c:54: 45:00:fc:b1:a5:91:19:66:32:6e:7b:3e:e7:aa:74: 07:d0:49:41:3e:fc:75:68:fb:d3:ab:21:97:2e:4c: 22:0c:27:ad:4d:af:21:14:65:6a:4b:2f:a7:6f:f8: 73:8c:71:9f:60:06:e4:cd:b5:e8:5f:60:33:9b:ca: 32:a8:d6:1d:0c:2b:a7:a3:2a:49:5f:09:22:a5:2d: 1e:ed:13:f1:e6:9f:82:3b:25:26:f1:a8:ac:74:c5: 0e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:62:F0:B0:A5:E7:4F:BC:E9:01:A7:77:15:68:CA:F6:A3:5C:F8:0F X509v3 Authority Key Identifier: keyid:21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:8d:cd:6f:73:e0:99:86:09:42:7b:e1:48:bd:d6:12:e4:92: 58:a6:e0:ee:82:62:92:94:ad:89:3e:76:e0:64:11:90:18:cb: e9:21:8c:2c:8a:d7:d1:ec:1f:61:7c:a4:32:c9:b1:6b:65:8a: ae:af:73:00:33:0a:2d:09:cd:58:20:d3:88:85:c9:2b:64:a5: 31:fd:d8:4d:29:88:c3:a1:a1:98:92:9d:f2:e9:ce:50:ff:d6: 6f:a7:9f:7f:29:be:ac:c3:58:90:08:d7:cb:06:41:d4:8f:83: 06:2d:09:4a:c2:fd:25:24:41:5e:b2:41:cd:86:ac:a8:5e:ad: 2f:28:c8:74:31:37:32:6a:00:4c:2f:56:d5:a7:2d:c1:52:00: 78:dc:e6:0f:7e:5b:d9:9e:b9:fa:68:69:e4:37:46:40:c2:08: f0:57:d6:e7:8f:02:03:a6:f7:a7:63:98:d8:ac:a8:40:f2:51: 04:76:53:6b:71:04:e6:c2:90:fa:23:71:41:d3:32:80:6e:88: ae:6f:93:92:ea:d5:df:c6:fb:99:63:6b:28:bd:06:87:20:90: 52:ad:d3:c6:fe:04:68:ff:84:7b:00:2c:1d:80:9d:a4:8b:90: 7f:0d:b8:db:cd:38:0f:62:2f:23:8b:43:95:c1:27:54:24:70: aa:dc:52:cd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZuubtvLfwVUHRrzSGu1ubMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxYjgyZmM4ZWQ4OGY5OWNhYjU3ZDc2ODAzMTc2ZWIyN2E5 ZjBiZmEwHhcNMjUxMjEzMjIwMDM3WhcNMjUxMjE0MjIwMDM3WjAzMTEwLwYDVQQD EyhlZDYyZjBiMGE1ZTc0ZmJjZTkwMWE3NzcxNTY4Y2FmNmEzNWNmODBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA237n8edOiwqLUF+ts1YyjXJ0ZIuq rJtofJAcVQgUAMatx+8fjz21VIRt4YANXfOvDXNdJDzzD0EffAUgH3Ix2lYPPCAd 5h2EXm5gNSQZq9n5zbHiM14R8kVmMojLwNrj9ldFgQ/dSAJL0AY2/6q+sssZhepw I0Qz0NSQ/wFue+zFd4ntoFq01h8BS3ER2R2WLRbJX5mF+le0QmiRoE9rUulCDFRF APyxpZEZZjJuez7nqnQH0ElBPvx1aPvTqyGXLkwiDCetTa8hFGVqSy+nb/hzjHGf YAbkzbXoX2Azm8oyqNYdDCunoypJXwkipS0e7RPx5p+COyUm8aisdMUOCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO1i8LCl50+86QGndxVoyvajXPgPMB8GA1UdIwQY MBaAFCG4L8jtiPmcq1fXaAMXbrJ6nwv6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWJndnlPMkktWnlyVjlkb0F4ZHVzbnFmQ19vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9hYjY1ZjYtMzFiZS00MTQ5LWE2ZTMt YWU1ZmE1M2I5M2IyLzEvSWJndnlPMkktWnlyVjlkb0F4ZHVzbnFmQ19vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS9hYjY1ZjYtMzFiZS00MTQ5LWE2ZTMtYWU1ZmE1M2I5M2Iy LzEvSWJndnlPMkktWnlyVjlkb0F4ZHVzbnFmQ19vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIY3Nb3Pg mYYJQnvhSL3WEuSSWKbg7oJikpStiT524GQRkBjL6SGMLIrX0ewfYXykMsmxa2WK rq9zADMKLQnNWCDTiIXJK2SlMf3YTSmIw6GhmJKd8unOUP/Wb6effym+rMNYkAjX ywZB1I+DBi0JSsL9JSRBXrJBzYasqF6tLyjIdDE3MmoATC9W1actwVIAeNzmD35b 2Z65+mhp5DdGQMII8FfW548CA6b3p2OY2KyoQPJRBHZTa3EE5sKQ+iNxQdMygG6I rm+TkurV38b7mWNrKL0GhyCQUq3Txv4EaP+EewAsHYCdpIuQfw242804D2IvI4tD lcEnVCRwqtxSzQ== -----END CERTIFICATE-----Generated at Sun Dec 14 01:03:31 2025 by rpki-client